Rule-based policy enforcement point for map services

In the evolution of social networks and big data, secure information sharing is a crucial task. When information is shared between the user and the organization admin, security plays a key role in any business organization in terms of privacy. Though many fruitful solutions prevail to protect the data integrity and privacy, there is a huge space for novel data protection schemes where a large set of data are involved. In this article, the Cloud-Based Access Control (C-BAC) framework is proposed which can fit in any business organization application. In this C-BAC, Policy Enforcement Point (PEP) is used to avoid unwanted information sharing with the neighboring employee. C-BAC framework with RSA provides security, based on the number of employees with the data handled by the particular employee, better than the existing access control framework with asymmetric encryption standard (AES) and Rivest–Shamir–Adleman (RSA) in terms of individual information handling.

Download Full-text

PEP4Django A Policy Enforcement Point for Python Web Applications

10.5753/wgid.2019.14021 ◽

2019 ◽

Author(s):

Carlos Eduardo Da Silva ◽

Welkson De Medeiros ◽

Silvio Sampaio

Keyword(s):

Access Control ◽

Web Application ◽

Web Applications ◽

Policy Enforcement ◽

Control Mechanisms ◽

Business Logic ◽

Control Policies ◽

Control Rules ◽

Access Control Policies ◽

Policy Enforcement Point

Traditionally, access control mechanisms have been hard-coded into application components. Such approach is error-prone, mixing business logic with access control concerns, and affecting the ﬂexibility of security policies, as is the case with IFRN SUAP Django-based system. The externalization of access control rules allows their decoupling from business logic, through the use of authorization servers where access control policies are stored and queried for computing access decisions. In this context, this paper presents an approach that allows a Django Web application to delegate access control decisions to an external authorization server. The approach has been integrated into an enterprise level system, which has been used for experimentation. The results obtained indicate a negligible overhead, while allowing the modiﬁcation of access control policies without interrupting the system.

Download Full-text

Using Conventional Articulation Tests With Highly Unintelligible Children

Language Speech and Hearing Services in Schools ◽

10.1044/0161-1461.2301.52 ◽

1992 ◽

Vol 23 (1) ◽

pp. 52-60 ◽

Cited By ~ 1

Author(s):

Pamela G. Garn-Nunn ◽

Vicki Martin

Keyword(s):

Test Results ◽

Phonological Processes ◽

Rule Based ◽

Severity Level ◽

Error Sensitivity ◽

Conventional Tests ◽

Severity Levels ◽

Conventional Test ◽

Impaired Children

This study explored whether or not standard administration and scoring of conventional articulation tests accurately identified children as phonologically disordered and whether or not information from these tests established severity level and programming needs. Results of standard scoring procedures from the Assessment of Phonological Processes-Revised, the Goldman-Fristoe Test of Articulation, the Photo Articulation Test, and the Weiss Comprehensive Articulation Test were compared for 20 phonologically impaired children. All tests identified the children as phonologically delayed/disordered, but the conventional tests failed to clearly and consistently differentiate varying severity levels. Conventional test results also showed limitations in error sensitivity, ease of computation for scoring procedures, and implications for remediation programming. The use of some type of rule-based analysis for phonologically impaired children is highly recommended.

Download Full-text

Haunted by a Doppelgänger

Experimental Psychology (formerly Zeitschrift für Experimentelle Psychologie) ◽

10.1027/1618-3169/a000221 ◽

2014 ◽

Vol 61 (1) ◽

pp. 12-22 ◽

Cited By ~ 11

Author(s):

Bettina von Helversen ◽

Stefan M. Herzog ◽

Jörg Rieskamp

Keyword(s):

Relevant Information ◽

Psychological Research ◽

Decision Makers ◽

Human Judgment ◽

Rule Based ◽

New Employees ◽

High Performing ◽

Facial Similarity ◽

Similarity Effect ◽

Judgment Strategy

Judging other people is a common and important task. Every day professionals make decisions that affect the lives of other people when they diagnose medical conditions, grant parole, or hire new employees. To prevent discrimination, professional standards require that decision makers render accurate and unbiased judgments solely based on relevant information. Facial similarity to previously encountered persons can be a potential source of bias. Psychological research suggests that people only rely on similarity-based judgment strategies if the provided information does not allow them to make accurate rule-based judgments. Our study shows, however, that facial similarity to previously encountered persons influences judgment even in situations in which relevant information is available for making accurate rule-based judgments and where similarity is irrelevant for the task and relying on similarity is detrimental. In two experiments in an employment context we show that applicants who looked similar to high-performing former employees were judged as more suitable than applicants who looked similar to low-performing former employees. This similarity effect was found despite the fact that the participants used the relevant résumé information about the applicants by following a rule-based judgment strategy. These findings suggest that similarity-based and rule-based processes simultaneously underlie human judgment.

Download Full-text